Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/961a72-70fd-450f-9fe9-3bba3628324b/1/xsZlPoe7LvmtuwYZYOIFAKVU8DU.mft
File: xsZlPoe7LvmtuwYZYOIFAKVU8DU.mft (raw, json)
Hash identifier: fAB6iBWyN6gfZOijyv13swWlxz1WG90EXP2lqfhft7E=
Subject key identifier: CF:0B:04:87:3C:2A:CC:08:6E:CD:20:AA:18:29:2E:9F:43:85:A0:4A
Authority key identifier: C6:C6:65:3E:87:BB:2E:F9:AD:BB:06:19:60:E2:05:00:A5:54:F0:35
Certificate issuer: /CN=c6c6653e87bb2ef9adbb061960e20500a554f035
Certificate serial: 019751213E97F3F60F5D0730E5809BEED41B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xsZlPoe7LvmtuwYZYOIFAKVU8DU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/961a72-70fd-450f-9fe9-3bba3628324b/1/xsZlPoe7LvmtuwYZYOIFAKVU8DU.mft
Manifest number: 054B
Signing time: Sun 08 Jun 2025 20:00:22 +0000
Manifest this update: Sun 08 Jun 2025 20:00:22 +0000
Manifest next update: Mon 09 Jun 2025 20:00:22 +0000
Files and hashes: 1: CL-hnZLAW32dB0McMUvKXumHbjc.roa (hash: /6abOSVtqiSm907QP0eqatEoUJFnqFDpeoJMvvSk4WA=)
2: xsZlPoe7LvmtuwYZYOIFAKVU8DU.crl (hash: g+mJFr9YkF3mmmmJdIe5sNBxxeAVrDcVik5uFwl+PDI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/961a72-70fd-450f-9fe9-3bba3628324b/1/xsZlPoe7LvmtuwYZYOIFAKVU8DU.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/961a72-70fd-450f-9fe9-3bba3628324b/1/xsZlPoe7LvmtuwYZYOIFAKVU8DU.mft
rsync://rpki.ripe.net/repository/DEFAULT/xsZlPoe7LvmtuwYZYOIFAKVU8DU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 17:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:51:21:3e:97:f3:f6:0f:5d:07:30:e5:80:9b:ee:d4:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c6c6653e87bb2ef9adbb061960e20500a554f035
Validity
Not Before: Jun 8 20:00:22 2025 GMT
Not After : Jun 9 20:00:22 2025 GMT
Subject: CN=cf0b04873c2acc086ecd20aa18292e9f4385a04a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:98:dc:af:d8:35:90:f7:64:05:f3:7d:34:32:
e1:2f:11:8b:a6:4c:fd:9e:b2:2e:99:d7:ee:8e:fc:
28:d9:9c:f1:45:7e:cf:fc:b8:17:34:a6:85:21:65:
3c:f2:a4:a5:ab:ea:60:6c:49:e3:61:47:b4:2f:f1:
d1:9a:eb:ab:34:49:0c:6d:fc:e4:61:18:da:f4:24:
23:0d:ce:38:68:40:e5:9d:c9:62:e8:cd:31:54:62:
a0:b7:48:4c:56:68:ef:7b:a6:87:54:94:4f:e1:f8:
07:f1:c9:43:ea:39:2e:8d:76:81:18:06:6a:c3:bb:
9e:14:13:2a:63:85:aa:16:6b:5a:db:d3:2d:0b:d0:
f7:c2:92:51:d7:e6:64:2d:21:01:c4:2a:6c:17:9f:
d5:91:2a:5d:ce:65:b5:66:65:1c:c8:a6:8f:26:36:
5b:13:3a:fd:84:b2:7a:51:b5:f8:83:3b:e8:ce:29:
af:9a:da:a1:7b:d4:66:3a:b5:c3:22:ad:23:45:b3:
a2:48:f3:4f:ab:d1:c2:09:0a:7d:ff:f9:c1:26:72:
b2:d1:9e:3c:c0:80:a4:02:b3:f0:75:73:9e:8a:4f:
7c:d9:ae:0d:4d:39:8b:7f:13:7e:ac:27:10:28:87:
43:3f:b9:96:d8:1e:e8:93:dd:79:f2:36:c6:5e:f4:
51:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:0B:04:87:3C:2A:CC:08:6E:CD:20:AA:18:29:2E:9F:43:85:A0:4A
X509v3 Authority Key Identifier:
keyid:C6:C6:65:3E:87:BB:2E:F9:AD:BB:06:19:60:E2:05:00:A5:54:F0:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xsZlPoe7LvmtuwYZYOIFAKVU8DU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/961a72-70fd-450f-9fe9-3bba3628324b/1/xsZlPoe7LvmtuwYZYOIFAKVU8DU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/961a72-70fd-450f-9fe9-3bba3628324b/1/xsZlPoe7LvmtuwYZYOIFAKVU8DU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:af:81:75:dd:4a:ef:1d:7e:b1:1e:ba:1c:74:54:8d:6f:26:
dd:ab:76:f7:1b:78:10:89:a6:f9:06:46:05:0f:85:02:dd:bc:
64:08:cd:37:38:db:53:2a:70:04:cc:c3:0f:cc:99:47:cf:4f:
c5:07:14:3c:b3:60:2b:4d:8c:1a:d8:c5:e9:70:33:26:0e:1c:
4a:da:7a:73:21:7d:cc:fa:d6:38:69:24:1e:f6:90:41:96:8a:
2d:55:7e:ee:24:7e:45:18:c8:2e:7b:c1:85:fb:ce:50:21:2a:
1c:28:c8:2d:86:03:fa:88:5e:8f:83:b3:98:dc:0b:01:e0:ba:
9e:d2:0c:3f:69:45:9b:6d:eb:fc:24:98:c0:dd:ef:81:9e:3c:
3e:42:4a:98:ec:31:84:2b:4b:c0:a5:c0:ae:7e:db:8a:dc:06:
2e:82:02:26:a5:0b:c0:14:c9:08:41:67:a8:6d:51:4d:2b:31:
1d:65:cc:c2:6b:eb:63:19:1b:f3:51:98:99:d9:9d:5b:51:c0:
9a:ce:ae:31:ce:41:6f:8e:d5:8b:d5:98:cc:43:0a:83:b4:42:
b8:24:5f:75:b8:39:ed:45:b9:9f:a0:8d:00:76:fa:59:9e:75:
9a:6c:88:3e:38:73:cd:2a:de:9f:da:a9:de:8e:b5:3f:df:ac:
90:58:75:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 00:47:04 2025 by rpki-client